• No results found

MOBILITY EXCHANGE MX-2800

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "MOBILITY EXCHANGE MX-2800"

Copied!
6
0
0

Loading.... (view fulltext now)

Download now ( 6 Page )

Full text

(1)

MOBILITY EXCHANGE

MX-2800

The Trapeze Mobility Exchange™ MX-2800 is the next generation Smart Mobile™ WLAN controller for medium to large size enterprise WLAN deployments. It brings unprecedented scalability, manageability, reliability and resiliency features to WLAN networks, mirroring the user experience of wired networks. Powered by Trapeze’s unique hardware-accelerated WLAN processing engine and a high speed security co-processor, the MX-2800 scales to support the most demanding wireless applications indoors and outdoors, including voice over Wi-Fi for thousands of users. It offers 28 Gbps of throughput and supports up to 512 802.11n APs while providing always-on availability and hitless failover with no service interruption, even in the unlikely event of a controller failure.

The Trapeze Mobility Exchange™ (MX™) family of intelligent WLAN controllers provides the platform for Trapeze Smart Mobile™ wireless networks. Smart Mobile is the only WLAN architecture that offers intelligent switching, which combines both centralized and distributed data forwarding based on the requirements of the underlying application. Operating in conjunction with Trapeze Mobility Point™ (MP™) access points, and Mobility System Software™(MSS), MX controllers can offload policy enforcement and data forwarding to the MPs, resulting in optimized traffic flow, radically reduced latency, and massive scalability. The MX-2800 is the latest generation of WLAN controllers from Trapeze Networks. Designed for data center or distributed wiring closet installations, the MX-2800 enables seamless and secure deployment of enterprise class wireless networks over any existing L2/L3 network without disruption.

The MX-2800 combines L2 Ethernet switching, stateful per user and per service firewalls, wireless intrusion protection, 802.1Q trunking and per VLAN spanning tree (PVST+), complete wired to wireless quality of service (QoS), and automated RF management. Clusters of MXs form a Mobility Domain™ which provides seamless roaming, intrusion protection and RF management over large single site wireless LAN deployments. A Network Domain™ interconnects Mobility Domains to support multiple sites and span wide geographic regions with secure, seamless mobility applications and Smart Mobile services.

(2)

2

Key Features

SCALABILITY AND RELIABILITY

Ports and Interfaces • 8 x GE pluggable SFP and 10/100/1000Base-T RJ45 • 2 x 10GE pluggable XFP

Number of managed Access Points • Up to 512 APs in increments of 64 Access Points licenses Mobility Domain™ service for

seamless mobility services • Mobility service across 64 MX controllers and 10,000 Access Points Network Domain™ service extends

the reach of Mobility Domain across a global network

• Cluster of 1,024 Mobility Domains, extending mobility across 32,768 MX controllers

Reliability • Always-on availability and hitless failover with no service interruption for voice and data clients even in the unlikely event of a controller failure • Hot pluggable redundant power supply

• Hot pluggable fan tray module

• EtherChannel™ load-shared, redundant links • Spanning tree and per-VLAN spanning tree (PVST+) • Resilient network attachment via any MX port • N:1 and N:N redundant MX capabilities

SECuRITY

Authentication • Supports complete local AAA authentication, including 802.1X, as primary or backup to a centralized AAA server

• Supports multiple AAA server groups and can load share across multiple AAA servers or within a server group

• Generates and manages X.509 digital certificates

• Assigns and enforces per-user authorization policies that are managed centrally from the AAA back-end

• Authorizations include virtual private group membership, personal firewall filters, time-of-day/day-of-week access, encryption type, and location-specific policies

• IEEE 802.1X with multiple EAP types (TLS, PEAP/MSCHAP, TTLS) • WebAAA, MAC, Open

• WPA2-Enterprise Certified

Encryption Key Management • Encryption distributed in Mobility Points • MX generates master and session keys • AES, TKIP, and WEP encryption

• Provides key management for each encryption technique Identity-based Networking • User credentials define access and network resource privileges

• Privileges and services follow users as they roam

• Maintains a user’s membership in the right virtual private group based on the user’s authenticated identity

• Dynamically enables Virtual Private Groups to support roaming across router boundaries

• Centralized management and control

Endpoint Assurance • Trusted Computing Group (TCG) - Trusted Network Connect (TNC) compliant

(3)

Intrusion Detection and Protection • ActiveScan™ rogue and denial-of-service (DoS) attack detection — Scans

all bands, associated channels and VLANs, while simultaneously providing wireless connectivity to mobile clients

• SentryScan™ — Scans the air continuously on both bands and their associated channel while other MPs support wireless LAN clients • Rogue detection, Intrusion Detection System (IDS) and RF

countermeasures

• Trapeze/AirDefense integrated Intrusion Detection and Prevention - Best in class IDS/IPS

- Common Trapeze MP hardware for sensor and service APs - Dynamic threat management- convert MPs to sensors on demand - Threat location and mitigation

MOBILITY SERVICES

Data Services • Data-intensive applications

• Latency-sensitive applications Standards-based toll quality

voice service • VoIP protocol support• 802.11e/WMM compliant

• Queuing and priority (802.11e/WMM)

• Preserve voice priority across network (802.11i PMK cache, WMM) • Bandwidth control for voice (TSPEC)

• Maximize handset battery life (WMM-PS/ U-APSD) • Neighbor report assisted roaming (802.11k) Virtual service sets • Multiple SSID support (64 per MP, 32 per radio)

• Any mix of crypto and authentication per SSID • Any VLAN topology per SSID

• Unique portal page per SSID • Private or shared authentication

Guest Services • SmartPass™ enables fast and simple configuration for guest access • 64 web portals for customized user group profiles

• GuestTunneling™ to isolate guest traffic across the corporate network High speed data services (802.n) • 802.11n ready

• Direct Data Path Forwarding enables local switching of data traffic in the Mobility Point or forwarding of data to Mobility Point upstream or downstream

• Mobility Point configured by MX for Direct Data Path Forwarding Outdoor services • Wireless backhaul (P-P, P-MP) and Wireless bridging (P-P, P-MP)

• Enterprise Ethernet mesh service with Mesh Portal and Mesh Access Point Services with Direct Data Path support

• Integrated control and management with indoor Smart Mobile services Real time location services • Wi-Fi based active RFID location technology (client and network based)

(4)

MANAGEMENT AND CONTROL

Management access • Command Line Interface (SSH v2) • WebView™ web access (https) • SSL, XML (to RingMaster™) • SNMP v1, v2c, v3

Clustering An MX cluster is a set of MX controllers that are managed as a single entity - a virtual stack. It allows users to scale easily, and configure, monitor and troubleshoot MXs and APs through a single point of entry.

RF management • Automated MP Power/channel auto-tuning • Dynamic Frequency Selection (DFS)

user management and statistics • Detailed per user per session RF accounting statistics and management • Tracks the location, roaming history, virtual private group, network

addresses, state, activity, errors, usage and other attributes by user name, session, VLAN, or user group

• Provides per user audit trail and chargeback capability through the accounting component of AAA

MP management and control • Configures and controls MPs; controls third party APs

• The MX is categorized as an access controller (AC) that supports direct, switched, and routed connections

• Enables data forwarding in MX or in MP with Smart Mobile technology • Multiple MXs provide resilient control

Direct Data Path Forwarding • MP configured to switch data traffic locally or forwarded to the MPs downstream or upstream

• Optimizes network and MX capacity and performance • Control retained in MX

Client load balancing • Equalizes the number of client sessions among groups of radios that have substantially overlapping coverage areas

• Restores equality of numbers of client sessions when an AP is added to a group or is brought back up after a transient failure

• Allows a balanced group of APs to span multiple MX’s in a mobility domain Client band steering • Enables client steering across frequency bands for efficient usage of the

available spectrum, and reduces network load on the congested 2.4 GHz band

Specifications

HARDWARE SPECIFICATIONS

Dimensions (W x D x H) • W=17.4 in, H=2.594 in, Depth=18.0 in (44.19 cm x 6.58 cm x 45.72 cm)

Weight • 18 lbs (8.1 kg) with one power supply

• 19.5 lbs (8.77 kg) with two power supplies

Interfaces • 8 x Gigabit Ethernet Small Form-Factor Pluggable (SFP) ports • 8 x Gigabit Ethernet RJ45 ports

(5)

Environmental • Operating temperature: 0°C to 50°C

• Storage temperature: -40°C to 70°C • Humidity: 10% - 90% (non-condensing)

Power • 100-240 VAC 50-60 Hz

Regulatory Safety • UL 60950-1, CB scheme IEC 60950-1, EN 60950-1, CSA 60950-1-03

EMI/EMC • FCC Part 15 Class A

• ICES Class A • EN 55022 Class A • EN 55024 • CISPR 22 Class A

SuPPORTED STANDARDS

Security and AAA RFCs • RFC 2246 Transport Layer Security (TLS) • RFC 2284 EAP

• RFC 2315 PKCS #7: Cryptographic Message Syntax Ver 1.5 • RFC 2548 Microsoft RADIUS VSAs

• RFC 2716 PPP EAP TLS Authentication Protocol • RFC 2759 Microsoft PPP CHAP Extensions, Version 2 • RFC 2865 RADIUS Authentication

• RFC 2866 RADIUS Accounting • RFC 2869 RADIUS Extensions

• RFC 2986 PKCS #10: Certification Request Syntax Ver 1.7 • RFC 3580 IEEE 802.1x RADIUS Guidelines

IEEE Standards • 802.1X: Port Based Network Access Control • 802.3u: 100 BASE-TX Fast Ethernet

• 802.3ab: 1000 BASE-TX Gigabit Ethernet • 802.3ae: 10 Gigabit Ethernet

• 802.11a/b/g, 802.11d, 802.11e, 802.11h, 802.11i, 802.11k

General • RFC 1122 Host requirements

• RFC 1393 Traceroute • RFC 1519 CIDR • RFC 1591 DNS • RFC 2030 SNTP • RFC 768 UDP • RFC 783 TFTP • RFC 791 IP • RFC 792 ICMP • RFC 793 TCP • RFC 826 ARP

• IEEE 802.1D Spanning Tree • IEEE 802.1Q VLAN tagging • IEEE 802.3ad (static config) Management and Control • RFC 854 Telnet (server and client)

• SSHv2 - Secure Shell V2 • SNMP v1, v2c, v3 • RFC 1213 MIB-II • RFC 1866 HTML • RFC 2068 HTTP • RFC 3164 Syslog • Trapeze private MIB

(6)

Americas 5753 W. Las Positas Blvd. Pleasanton, CA 94588 Phone 925.474.2200 Fax 925.251.0642

Trapeze Networks, the Trapeze Networks logo design, Trapeze Smart Mobile, Trapeze Networks Mobility System Software, RingMaster, Mobility System, Mobility Exchange, Mobility Point, SafetyNet, MX, and MP are registered trademarks and/or registered service marks of Trapeze Networks, Inc. Trapeze, Smart Mobile, Mobility System Software, Mobility Domain, SmartPass, NonStop Wireless, Medical Grade Mobility and Wireless Without Limits are trademarks and/or service marks of Trapeze Networks, Inc. All other products and services are trademarks, registered trademarks, service marks, or registered service marks of their respective owners.

© 2008 Trapeze Networks, Inc. All rights reserved. www.TrapezeNetworks.com

DS-MX-2800-05/08 1.888.768.6625 EMEA Olympia 3D-2 1213 NS Hilversum The Netherlands Phone +31 (0) 35.64.64.420 Fax +31 (0) 35.64.64.429

Asia-Pacific

5 Shenton Way #37-02/38-02 UIC Building Singapore 068808 Phone +65.6372.2351 Fax +65.6372.2352 Japan

Ark Mori Bldg., West Wing 12F 12-32, Akasaka 1-chome Minato-ku, Tokyo 107-6024 Phone +81 (0) 3.4360.8400 Fax +81 (0) 3.4360.8447 IP Multicast • RFC 1112 IGMP v1 • RFC 2236 IGMP v2

Quality of Service (QoS) • 802.11e, Wi-Fi Multimedia (WMM), WMM-PS • SpectraLink Voice Priority (SVP)

• RFC 2472 DiffServ precedence

• RFC 2597 DiffServ Assured Forwarding • RFC 2598 DiffServ Expedited Forwarding

Ordering Information

PART NuMBER DESCRIPTION

MX-2800-xx • MX with two 10 GbE XFP ports and 8 x 1000Base-T (RJ-45 and SFP) ports, including 64 MP license, single PSU

MX-2800-u • 64 MP license upgrade for MX-2800 (max. 512 MPs)

MX-2800-PSu-xx • PSU for MX-2800 redundant power or spare

References

Download now ( PDF - 6 Page - 718.74 KB )

Related documents

Assessing older adults' current and expected 'social care related quality of life' in order to investigate the impact of care services

The impact of support and care services within extra care housing schemes was explored through comparisons of quality of life in a sample of 83 extra care housing residents

Auxin-Binding Protein 1 is a negative regulator of the SCF(TIR1/AFB) pathway

Several lines of evidence support that the inactivation of ABP1 does not result in an increase in auxin content that would be responsible for enhanced AUX/IAA degradation: first,

Papp i parken: Retorikk og estetikk i Occupy Wall Street

Jeg anser begrepet Occupy-bevegelsen som dekkende for de mange protesterende som tok i bruk okkupasjon som aksjonsform i kjølvannet av Occupy Wall Street, og som identifiserte seg

On Partial Honesty Nash Implementation

In standard framework of Nash implementation, Maskin (1977, 1999) was the first who shows that any social choice correspondence (SCC) satisfying Maskin monotonicity and no veto

Chapter 4 World War II and Japanese-American Relocation

Moreover, most Japanese-Americans lived in California, the region of the United States most vulnerable to Japanese invasion.. Some commentators suggested that the very lack of

AR150 Using AR Templates

Lesson 3 Completing the General Billing Upload Form Topics 32 General Billing Upload form Other unit responsibilities Process AR lockbox invoice payments Record

Implementasi Dan Perancangan Sistem E-Commerce Penjualan Oli Petronas Di PT.Citra Kencana Niaga

Citra Kencana Niaga, maka dapat ditarik kesimpulan bahwa layanan E- commerce ini dapat membantu dalam pengelolaan produk, pembuatan laporan penjualan dan dapat

Security Solutions Portfolio

Juniper Networks NetScreen-5GT Wireless Juniper Networks ISG 1000 Juniper Networks ISG 2000 Juniper Networks NetScreen-5400 Juniper Networks NetScreen-5GT and NetScreen-5GT